ae999f0ec13487b64a16923eed3ee17be5310b67c45f0aeb84b7238ebe912e2a | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-05-23...re.exe

windows7-x64

7

2024-05-23...re.exe

windows10-2004-x64

7

Sharing

General

Target

2024-05-23_827cfef6743e76e1602e7c17b41071d0_bkransomware
Size

1.8MB
Sample

240523-jbmfnshe8v
MD5

827cfef6743e76e1602e7c17b41071d0
SHA1

0f849613d8dcb3af80dcdcbdd3e9356d76006f44
SHA256

ae999f0ec13487b64a16923eed3ee17be5310b67c45f0aeb84b7238ebe912e2a
SHA512

ba6617f97186dab8bbfb48ee27581976d9c2e492167355a12af3e113c6dee870f02166df0e25e5c8b9f1cb5a6a81f5906b23d2b69681d41be97a5ff513f3e9ef
SSDEEP

49152:GEW9+ApwXk1QE1RzsEQPaxHNZ/i3da1YS6ozB:A93wXmoKB/iyB

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-05-23_827cfef6743e76e1602e7c17b41071d0_bkransomware.exe

Resource

win7-20240508-en

spyware stealer

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-23_827cfef6743e76e1602e7c17b41071d0_bkransomware.exe

Resource

win10v2004-20240508-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-23_827cfef6743e76e1602e7c17b41071d0_bkransomware
- Size
  
  1.8MB
- MD5
  
  827cfef6743e76e1602e7c17b41071d0
- SHA1
  
  0f849613d8dcb3af80dcdcbdd3e9356d76006f44
- SHA256
  
  ae999f0ec13487b64a16923eed3ee17be5310b67c45f0aeb84b7238ebe912e2a
- SHA512
  
  ba6617f97186dab8bbfb48ee27581976d9c2e492167355a12af3e113c6dee870f02166df0e25e5c8b9f1cb5a6a81f5906b23d2b69681d41be97a5ff513f3e9ef
- SSDEEP
  
  49152:GEW9+ApwXk1QE1RzsEQPaxHNZ/i3da1YS6ozB:A93wXmoKB/iyB
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Query Registry

Peripheral Device Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy